PIX 515 e SSH configuration

Answered Question
Feb 20th, 2007

Hello all,

I have a request to allow access for SSH on port 22 for a googlemini device.

Does anyone know the syntax? command line information to accomplist this on a PIX 515e.

I have this problem too.
0 votes
Correct Answer by vitripat about 9 years 7 months ago

There could be two scenarios:

1) googlemini device has its own public IP address (x.x.x.x) and its private IP is y.y.y.y

Assuming that there is no access-list defined on outside interface of PIX, commands would be-

static (inside,outside) x.x.x.x y.y.y.y

access-list 101 permit tcp any host x.x.x.x eq 22

access-group 101 in interface outside

2) googlemini device doesnt have a free public IP address, need to share the public IP address assigned to outside interface IP, commands would be-

static (inside,outside) tcp interface 22 y.y.y.y 22

access-list 101 permit tcp any interface outside eq 22

access-group 101 in interface outside

I hope this helps.

Regards,

Vibhor.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
vitripat Tue, 02/20/2007 - 13:04

There could be two scenarios:

1) googlemini device has its own public IP address (x.x.x.x) and its private IP is y.y.y.y

Assuming that there is no access-list defined on outside interface of PIX, commands would be-

static (inside,outside) x.x.x.x y.y.y.y

access-list 101 permit tcp any host x.x.x.x eq 22

access-group 101 in interface outside

2) googlemini device doesnt have a free public IP address, need to share the public IP address assigned to outside interface IP, commands would be-

static (inside,outside) tcp interface 22 y.y.y.y 22

access-list 101 permit tcp any interface outside eq 22

access-group 101 in interface outside

I hope this helps.

Regards,

Vibhor.

Actions

This Discussion